MLCC: A new hash‐chained mechanism for multicast source authentication

Advanced metering infrastructure (AMI) provides 2‐way communications between the utility and the smart meters. Developing authenticated key exchange (AKE) and broadcast authentication (BA) protocols is essential to provide secure communications in AMI. The security of all existing cryptographic protocols is based on the assumption that secret information is stored in the nonvolatile memories. In the AMI, the attackers can obtain some or all of the stored secret information from memories by a great variety of inexpensive and fast side‐channel attacks. Thus, all existing AKE and BA protocols are no longer secure. In this paper, we investigate how to develop secure AKE and BA protocols in the presence of memory attacks. As a solution, we propose to embed a physical unclonable function (PUF) in each party, which generates the secret values as required without the need to store them. By combining PUFs and 2 well‐known and secure protocols, we propose PUF‐based AKE and BA protocols. We show that our proposed protocols are memory leakage resilient. In addition, we prove their security in the standard model. Performance analysis of both protocols shows their efficiency for AMI applications. The proposed protocols can be easily implemented.

Section: Introductionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

PUF‐based solutions for secure communications in Advanced Metering Infrastructure (AMI)

Delavar

Mirzakuchaki

Ameri

et al. 2016

“…In this survey, they pointed out that the source authentication for multicast environments has to focus on the confidentiality of each packet. In recent years, various schemes of the source authentication schemes for multicast [5][6][7][8][9][10][11][12] have been proposed to reduce the computation costs. These schemes are based on the hash-chain method, such as simple hash chain [5], multi-hash chain [6][7][8], hash tree [9,10], and Timed Efficient Stream Loss-tolerant Authentication (TESLA) schemes [11,12].…”

Section: Introductionmentioning

confidence: 99%

A source authentication scheme based on message recovery digital signature for multicast

Yang

Lin

2013

SUMMARY The source authentication is an important issue for the multicast applications because it can let the receiver know whether the multicast message is sent from a legal source or not. However, the previously related schemes did not provide the confidentiality for data packets. In addition, the communication costs of these schemes are still high for real‐time applications in the multicast environments. To solve the aforementioned problems, we propose a new source authentication scheme based on message recovery signature for multicast in this paper. In the proposed scheme, the encrypted data can be embedded in the digital signature, so the communication loads can be greatly reduced. In addition, the digital signature contains the encrypted data, and thus the confidentiality of data packets can be well protected. According to the aforementioned advantages, the proposed scheme is securer and more efficient than the related works for the real‐time applications. Copyright © 2013 John Wiley & Sons, Ltd.

“…In 1981, Lamport [1] proposed the first authentication scheme. Since then, many authentication schemes [2][3][4][5][6][7][8][9][10][11] have been proposed to improve security or performance.…”

Section: Introductionmentioning

confidence: 99%

“…This also incurs management problem. All of the above authentication schemes [1][2][3][4][5][6][7][8][9][10][11] are not suitable for the multiserver environment because they are designed for the single server environment. To satisfy practical applications, mutual authentication with key agreement (MAKA) protocol for multiserver environment is studied widely.…”

Section: Introductionmentioning

confidence: 99%

An ID‐based mutual authentication with key agreement protocol for multiserver environment on elliptic curve cryptosystem

Han

Zhu

2012

Mutual authentication is used to validate the legitimacy of a remote login user and a server. Conventional user authentication protocols are suited to solve the privacy and security problems for the single client/server architecture environment. However, the use of computer networks and information technology has grown spectacularly. More and more network architectures are used in multi-server environments. Recently, several authentication schemes for multi-server environments have been proposed. However, the performance of these schemes is not suitable for applications. To improve the performance, we propose a new ID-based mutual authentication protocols for multi-server environment without bilinear pairings. We also show that the proposed scheme is provable secure in the random oracle model. a public key infrastructure is needed to maintain the certificates for users' public keys. When the number of users is increased, the public key infrastructure will need a larger storage space to store users' public keys and certificates. In addition, users need additional computations to verify the other's certificate in these protocols. ID-based protocols can solve the problems in public-key-based protocols. Thus, we just concern with the design of ID-based MAKA protocols for multiserver environment in this paper.In 2008, Geng and Zhang [12] proposed a dynamic ID-based MAKA protocol for multiserver environment using bilinear pairings. At the same time, Liao and Wang [13] also proposed a dynamic ID-based MAKA protocol for multiserver environment. However, Hsiang and Shih [14] pointed that Liao and Wang's protocol [13] is vulnerable to insider's attack, masquerade attack, server spoofing attack, and registration center spoofing attack and is not reparable. Hsiang and Shih also proposed an improved protocol to overcome the weakness. However, Chuang and Tseng [15] demonstrated that Geng and Zhang's protocol [12] and Hsiang and Shih's protocol [14] are vulnerable to the masquerade attack and the server spoofing attack. According to our knowledge, there is no dynamic ID-based MAKA protocol for multiserver environment with provable security.On the other hand, the nondynamic ID-based MAKA protocol for multiserver environment is also widely studied. Li et al. [16] proposed a multiserver authentication protocol using neural networks in 2001 However the protocol spends too much time on training neural networks. Lin et al. [17] proposed another remote authentication protocol for multiserver environment based on the ElGamal digital signature protocol. However, Cao and Zhong [18] pointed that the protocol of Lin et al. [17] is vulnerable to impersonation attack. In 2005, Choi et al. [19] proposed an ID-based authenticated key agreement for low-power mobile devices. They did not concern with the multiserver environment. Indeed, their protocol is suitable for multiserver environment, but it does not provide full forward secrecy. Recently, Tsai [20] proposed a multiserver authentication protocol based on oneway hash functions without ver...